Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35392e302f32342d3234203d3e20313333383039.roa
File: 3230322e35312e35392e302f32342d3234203d3e20313333383039.roa (raw, json)
Hash identifier: pTS0l+eaws7qtvCg5sJfGYoPDTVDYWi86V9EN0fMVqo=
Subject key identifier: 88:5C:2A:15:3E:3E:18:EB:CB:59:29:FD:BF:79:02:BD:EE:77:C5:CA
Certificate issuer: /CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Certificate serial: 23C241D33DAAF2A18FCF9CB5F5011758BDD20B5B
Authority key identifier: 3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35392e302f32342d3234203d3e20313333383039.roa
Signing time: Mon 22 Apr 2024 10:02:11 +0000
ROA not before: Mon 22 Apr 2024 09:57:11 +0000
ROA not after: Mon 21 Apr 2025 10:02:11 +0000
asID: 133809
IP address blocks: 202.51.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Feb 2025 06:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:c2:41:d3:3d:aa:f2:a1:8f:cf:9c:b5:f5:01:17:58:bd:d2:0b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E6B5AF231FD809FBC8E599215B14D357AC66A8C
Validity
Not Before: Apr 22 09:57:11 2024 GMT
Not After : Apr 21 10:02:11 2025 GMT
Subject: CN=885C2A153E3E18EBCB5929FDBF7902BDEE77C5CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a5:57:d5:45:e3:4a:0f:0b:c8:43:91:de:c4:
6c:ee:7e:8b:01:f4:68:58:1e:41:5e:fe:3d:27:22:
4e:dc:a0:10:6a:55:8b:c2:32:d5:25:a6:48:49:2f:
22:5d:60:b9:13:12:4f:8c:ac:7c:5b:ea:72:32:e8:
cc:77:fc:cf:a5:e4:cb:75:38:9a:81:67:95:02:6e:
0e:d7:0d:68:cb:bd:17:2c:1a:a7:d3:54:9d:9a:67:
2e:de:32:58:14:52:73:aa:36:4c:d7:78:41:b8:4f:
51:e3:a1:46:5e:02:b8:28:ab:8b:43:ec:6d:dc:bb:
08:90:6a:5b:1a:ac:46:50:c4:62:82:6d:dc:fb:d0:
9f:47:89:bc:8a:46:05:59:9f:07:0d:43:fc:6a:16:
72:39:54:2b:57:fd:1d:16:c0:5c:d0:c9:0f:5a:f9:
55:5f:a3:d3:9a:80:6e:c8:60:29:16:72:92:a3:c2:
24:3e:92:f3:df:28:17:3c:55:a5:fd:b6:79:b5:78:
cb:23:a2:67:3e:e9:9d:bc:46:dc:fd:00:6d:39:5c:
5b:4c:c0:9d:ce:f0:08:87:c8:a9:4f:1a:10:0f:33:
00:12:e6:76:c6:4e:e9:21:05:39:a4:cd:b5:96:cb:
81:05:e7:e5:59:28:7a:cb:08:cf:9b:73:f2:43:f1:
ce:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5C:2A:15:3E:3E:18:EB:CB:59:29:FD:BF:79:02:BD:EE:77:C5:CA
X509v3 Authority Key Identifier:
keyid:3E:6B:5A:F2:31:FD:80:9F:BC:8E:59:92:15:B1:4D:35:7A:C6:6A:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E6B5AF231FD809FBC8E599215B14D357AC66A8C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be540164-3d46-4794-bf55-b6b134d9ab13/0/3230322e35312e35392e302f32342d3234203d3e20313333383039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.51.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f4:3a:39:44:b0:69:f6:18:37:78:93:fa:48:2b:04:7b:fe:
ee:ad:53:f5:76:c7:1f:2a:c7:82:e5:86:12:79:74:7b:ca:34:
d4:d5:21:ba:e9:e0:56:85:10:30:e6:88:f1:73:cc:9a:43:6e:
35:fa:e5:dd:90:a7:df:f5:83:90:46:e7:54:87:41:86:49:d6:
7c:b8:f2:c3:0f:b2:78:d7:5b:c2:05:43:23:1b:c1:4e:23:c0:
5a:89:c9:1d:33:c5:ec:48:67:ff:d4:04:3c:47:b3:2e:c4:ca:
47:2a:22:51:6c:45:1f:88:ea:91:a1:d2:dd:f8:f1:81:df:eb:
d7:fd:fa:c7:1a:bd:d7:bb:16:39:ea:61:1a:3f:0f:4d:3b:35:
02:09:7b:4a:1c:3b:cd:d8:40:63:d2:e0:ab:f4:65:5d:4f:0f:
51:f6:63:2a:cb:de:6f:df:14:77:e6:7e:af:bb:04:34:0b:48:
03:ac:54:2f:24:8f:20:ae:eb:45:6f:89:5d:db:42:d2:aa:ef:
00:29:01:14:67:68:0a:57:70:0f:74:75:71:a9:18:89:56:ba:
10:7f:a3:e8:5f:6d:bf:3e:4f:e5:c5:c6:d5:a0:95:15:f4:43:
97:38:5e:51:5b:93:07:5a:a2:08:68:d4:33:79:12:d8:4b:8a:
b9:6c:12:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 18 07:00:15 2025 by rpki-client